{"containers":{"cna":{"affected":[{"product":"n/a","vendor":"n/a","versions":[{"status":"affected","version":"n/a"}]}],"datePublic":"2010-12-16T00:00:00.000Z","descriptions":[{"lang":"en","value":"Multiple cross-site scripting (XSS) vulnerabilities in the Install Tool in TYPO3 4.2.x before 4.2.16, 4.3.x before 4.3.9, and 4.4.x before 4.4.5 allow remote authenticated users to inject arbitrary web script or HTML via unspecified vectors."}],"problemTypes":[{"descriptions":[{"description":"n/a","lang":"en","type":"text"}]}],"providerMetadata":{"dateUpdated":"2017-08-28T12:57:01.000Z","orgId":"53f830b8-0a3f-465b-8143-3b8a9948e749","shortName":"redhat"},"references":[{"tags":["x_refsource_CONFIRM"],"url":"http://typo3.org/teams/security/security-bulletins/typo3-core/typo3-sa-2010-022/"},{"name":"45470","tags":["vdb-entry","x_refsource_BID"],"url":"http://www.securityfocus.com/bid/45470"},{"name":"35770","tags":["third-party-advisory","x_refsource_SECUNIA"],"url":"http://secunia.com/advisories/35770"},{"name":"70120","tags":["vdb-entry","x_refsource_OSVDB"],"url":"http://www.osvdb.org/70120"},{"name":"[oss-security] 20110113 CVE requests: ftpls, xdigger, lbreakout2, calibre, typo3","tags":["mailing-list","x_refsource_MLIST"],"url":"http://www.openwall.com/lists/oss-security/2011/01/13/2"},{"name":"[oss-security] 20120510  Re: CVE-request: TYPO3 TYPO3-SA-2010-022 still without  CVE","tags":["mailing-list","x_refsource_MLIST"],"url":"http://www.openwall.com/lists/oss-security/2012/05/11/3"},{"name":"typo3-install-tool-xss(64181)","tags":["vdb-entry","x_refsource_XF"],"url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/64181"},{"name":"[oss-security] 20120511 CVE-request: TYPO3 TYPO3-SA-2010-022 still without  CVE","tags":["mailing-list","x_refsource_MLIST"],"url":"http://www.openwall.com/lists/oss-security/2012/05/10/7"}],"x_legacyV4Record":{"CVE_data_meta":{"ASSIGNER":"secalert@redhat.com","ID":"CVE-2010-5100","STATE":"PUBLIC"},"affects":{"vendor":{"vendor_data":[{"product":{"product_data":[{"product_name":"n/a","version":{"version_data":[{"version_value":"n/a"}]}}]},"vendor_name":"n/a"}]}},"data_format":"MITRE","data_type":"CVE","data_version":"4.0","description":{"description_data":[{"lang":"eng","value":"Multiple cross-site scripting (XSS) vulnerabilities in the Install Tool in TYPO3 4.2.x before 4.2.16, 4.3.x before 4.3.9, and 4.4.x before 4.4.5 allow remote authenticated users to inject arbitrary web script or HTML via unspecified vectors."}]},"problemtype":{"problemtype_data":[{"description":[{"lang":"eng","value":"n/a"}]}]},"references":{"reference_data":[{"name":"http://typo3.org/teams/security/security-bulletins/typo3-core/typo3-sa-2010-022/","refsource":"CONFIRM","url":"http://typo3.org/teams/security/security-bulletins/typo3-core/typo3-sa-2010-022/"},{"name":"45470","refsource":"BID","url":"http://www.securityfocus.com/bid/45470"},{"name":"35770","refsource":"SECUNIA","url":"http://secunia.com/advisories/35770"},{"name":"70120","refsource":"OSVDB","url":"http://www.osvdb.org/70120"},{"name":"[oss-security] 20110113 CVE requests: ftpls, xdigger, lbreakout2, calibre, typo3","refsource":"MLIST","url":"http://www.openwall.com/lists/oss-security/2011/01/13/2"},{"name":"[oss-security] 20120510  Re: CVE-request: TYPO3 TYPO3-SA-2010-022 still without  CVE","refsource":"MLIST","url":"http://www.openwall.com/lists/oss-security/2012/05/11/3"},{"name":"typo3-install-tool-xss(64181)","refsource":"XF","url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/64181"},{"name":"[oss-security] 20120511 CVE-request: TYPO3 TYPO3-SA-2010-022 still without  CVE","refsource":"MLIST","url":"http://www.openwall.com/lists/oss-security/2012/05/10/7"}]}}},"adp":[{"providerMetadata":{"orgId":"af854a3a-2127-422b-91ae-364da2661108","shortName":"CVE","dateUpdated":"2024-08-07T04:09:39.160Z"},"title":"CVE Program Container","references":[{"tags":["x_refsource_CONFIRM","x_transferred"],"url":"http://typo3.org/teams/security/security-bulletins/typo3-core/typo3-sa-2010-022/"},{"name":"45470","tags":["vdb-entry","x_refsource_BID","x_transferred"],"url":"http://www.securityfocus.com/bid/45470"},{"name":"35770","tags":["third-party-advisory","x_refsource_SECUNIA","x_transferred"],"url":"http://secunia.com/advisories/35770"},{"name":"70120","tags":["vdb-entry","x_refsource_OSVDB","x_transferred"],"url":"http://www.osvdb.org/70120"},{"name":"[oss-security] 20110113 CVE requests: ftpls, xdigger, lbreakout2, calibre, typo3","tags":["mailing-list","x_refsource_MLIST","x_transferred"],"url":"http://www.openwall.com/lists/oss-security/2011/01/13/2"},{"name":"[oss-security] 20120510  Re: CVE-request: TYPO3 TYPO3-SA-2010-022 still without  CVE","tags":["mailing-list","x_refsource_MLIST","x_transferred"],"url":"http://www.openwall.com/lists/oss-security/2012/05/11/3"},{"name":"typo3-install-tool-xss(64181)","tags":["vdb-entry","x_refsource_XF","x_transferred"],"url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/64181"},{"name":"[oss-security] 20120511 CVE-request: TYPO3 TYPO3-SA-2010-022 still without  CVE","tags":["mailing-list","x_refsource_MLIST","x_transferred"],"url":"http://www.openwall.com/lists/oss-security/2012/05/10/7"}]}]},"cveMetadata":{"assignerOrgId":"53f830b8-0a3f-465b-8143-3b8a9948e749","assignerShortName":"redhat","cveId":"CVE-2010-5100","datePublished":"2012-05-21T20:00:00.000Z","dateReserved":"2012-04-30T00:00:00.000Z","dateUpdated":"2024-08-07T04:09:39.160Z","state":"PUBLISHED"},"dataType":"CVE_RECORD","dataVersion":"5.1"}